Benchmarks
Plugin footprint 83% from 16 tests
Installer Passed 1 test
🔺 Critical test (weight: 50) | It is important to correctly install your plugin, without throwing errors or notices
The plugin installed successfully, without throwing any errors or notices
Server metrics [RAM: ▲0.54MB] [CPU: ▲0.39ms] Passed 4 tests
An overview of server-side resources used by XO Security
This plugin does not affect your website's performance
| Page | Memory (MB) | CPU Time (ms) |
|---|---|---|
| Home / | 3.69 ▲0.23 | 40.56 ▲0.99 |
| Dashboard /wp-admin | 4.00 ▲0.69 | 47.33 ▼6.06 |
| Posts /wp-admin/edit.php | 4.05 ▲0.69 | 49.82 ▲1.96 |
| Add New Post /wp-admin/post-new.php | 6.51 ▲0.62 | 95.67 ▲10.73 |
| Media Library /wp-admin/upload.php | 3.86 ▲0.62 | 39.50 ▲4.68 |
| XO Security /wp-admin/options-general.php?page=xo-security-settings | 3.83 | 35.42 |
| Login log /wp-admin/users.php?page=xo-security-login-log | 3.84 | 38.01 |
Server storage [IO: ▲0.30MB] [DB: ▲0.00MB] Passed 3 tests
A short overview of filesystem and database impact
This plugin was installed successfully
Filesystem: 21 new files
Database: 1 new table, 7 new options
| New tables |
|---|
| wp_xo_security_loginlog |
| New WordPress options |
|---|
| theysaidso_admin_options |
| can_compress_scripts |
| widget_recent-posts |
| widget_recent-comments |
| widget_theysaidso_widget |
| db_upgraded |
| xo_security_options |
Browser metrics Passed 4 tests
Checking browser requirements for XO Security
This plugin renders optimally with no browser resource issues detected
| Page | Nodes | Memory (MB) | Script (ms) | Layout (ms) |
|---|---|---|---|---|
| Home / | 2,863 ▲102 | 14.75 ▲0.57 | 1.70 ▲0.03 | 43.44 ▼0.31 |
| Dashboard /wp-admin | 2,272 ▲98 | 5.72 ▲0.18 | 91.64 ▼8.68 | 41.75 ▲1.35 |
| Posts /wp-admin/edit.php | 2,110 ▲7 | 2.02 ▲0.05 | 36.49 ▼4.20 | 37.66 ▼2.75 |
| Add New Post /wp-admin/post-new.php | 1,548 ▲20 | 18.26 ▼4.98 | 625.47 ▼31.33 | 69.81 ▲13.68 |
| Media Library /wp-admin/upload.php | 1,410 ▲10 | 4.17 ▼0.03 | 96.35 ▼1.49 | 42.17 ▼4.23 |
| XO Security /wp-admin/options-general.php?page=xo-security-settings | 1,171 | 2.04 | 23.53 | 28.65 |
| Login log /wp-admin/users.php?page=xo-security-login-log | 1,261 | 2.05 | 26.18 | 31.71 |
Uninstaller [IO: ▲0.00MB] [DB: ▲0.00MB] 75% from 4 tests
🔸 Tests weight: 35 | Verifying that this plugin uninstalls completely without leaving any traces
You still need to fix the following
- Zombie WordPress options detected upon uninstall: 6 options
- can_compress_scripts
- widget_recent-comments
- widget_theysaidso_widget
- db_upgraded
- widget_recent-posts
- theysaidso_admin_options
Smoke tests 50% from 4 tests
Server-side errors Passed 1 test
🔹 Test weight: 20 | A shallow check that no server-side errors were triggered
Everything seems fine, however this is by no means an exhaustive test
SRP 0% from 2 tests
🔹 Tests weight: 20 | It is important to ensure that your PHP files perform no action when accessed directly, respecting the single-responsibility principle
Please take a closer look at the following
- 1× PHP files output non-empty strings when accessed directly via GET requests:
- > /wp-content/plugins/xo-security/captcha/captcha.php
- 3× GET requests to PHP files trigger server-side errors or Error 500 responses:
- > PHP Warning
require_once(ABSPATHwp-admin/includes/class-wp-list-table.php): failed to open stream: No such file or directory in wp-content/plugins/xo-security/inc/class-xo-login-log-list-table.php on line 9
- > PHP Warning
Use of undefined constant ABSPATH - assumed 'ABSPATH' (this will throw an Error in a future version of PHP) in wp-content/plugins/xo-security/inc/class-xo-login-log-list-table.php on line 9
- > PHP Fatal error
require_once(): Failed opening required 'ABSPATHwp-admin/includes/class-wp-list-table.php' (include_path='.:/usr/share/php') in wp-content/plugins/xo-security/inc/class-xo-login-log-list-table.php on line 9
- > PHP Warning
User-side errors Passed 1 test
🔹 Test weight: 20 | A shallow check that no browser errors were triggered
Everything seems fine on the user side
Optimizations
Plugin configuration 96% from 29 tests
readme.txt Passed 16 tests
The readme.txt file is undoubtedly the most important file in your plugin, preparing it for public listing on WordPress.org
5 plugin tags: login, xmlrpc, rest, pingback, security
xo-security/xo-security.php 92% from 13 tests
"XO Security" version 3.7.0's primary PHP file adds more information about the plugin and serves as the entry point for WordPress
You should first fix the following items:
- Domain Path: The domain path folder was not found ("/languages")
Code Analysis Passed 3 tests
File types Passed 1 test
🔸 Test weight: 35 | A short glimpse at programming languages used with this plugin and a check that no dangerous files are present
Success! There were no dangerous files found in this plugin2,604 lines of code in 9 files:
| Language | Files | Blank lines | Comment lines | Lines of code |
|---|---|---|---|---|
| PHP | 5 | 399 | 767 | 2,256 |
| CSS | 2 | 14 | 12 | 211 |
| JavaScript | 2 | 13 | 1 | 137 |
PHP code Passed 2 tests
A brief analysis of cyclomatic complexity and code structure for this plugin
Although this was not an exhaustive test, there were no cyclomatic complexity issues detected
| Cyclomatic complexity | |
|---|---|
| Average complexity per logical line of code | 0.50 |
| Average class complexity | 171.00 |
| ▷ Minimum class complexity | 29.00 |
| ▷ Maximum class complexity | 271.00 |
| Average method complexity | 4.71 |
| ▷ Minimum method complexity | 1.00 |
| ▷ Maximum method complexity | 52.00 |
| Code structure | ||
|---|---|---|
| Namespaces | 0 | |
| Interfaces | 0 | |
| Traits | 0 | |
| Classes | 3 | |
| ▷ Abstract classes | 0 | 0.00% |
| ▷ Concrete classes | 3 | 100.00% |
| ▷ Final classes | 0 | 0.00% |
| Methods | 138 | |
| ▷ Static methods | 5 | 3.62% |
| ▷ Public methods | 119 | 86.23% |
| ▷ Protected methods | 6 | 4.35% |
| ▷ Private methods | 13 | 9.42% |
| Functions | 1 | |
| ▷ Named functions | 0 | 0.00% |
| ▷ Anonymous functions | 1 | 100.00% |
| Constants | 6 | |
| ▷ Global constants | 2 | 33.33% |
| ▷ Class constants | 4 | 66.67% |
| ▷ Public constants | 4 | 100.00% |
Plugin size Passed 2 tests
Image compression Passed 2 tests
All PNG images should be compressed to minimize bandwidth usage for end users
3 PNG files occupy 0.00MB with 0.00MB in potential savings
Potential savings
| Compression of 3 random PNG files using pngquant | |||
|---|---|---|---|
| File | Size - original | Size - compressed | Savings |
| images/check-off.png | 0.45KB | 0.25KB | ▼ 43.91% |
| images/check-on.png | 0.93KB | 0.62KB | ▼ 33.12% |
| images/check-ng.png | 1.14KB | 0.74KB | ▼ 35.53% |